Tag: #devsecops
GitLab has issued a critical security alert regarding a severe vulnerability in its GitLab Community and Enterprise editions, potentially allowing attackers to execute pipeline jobs as other users. With over 30 million registered users and adoption by more than 50% of Fortune 100 companies, including T-Mobile, Goldman Sachs, Airbus, Lockheed Martin, Nvidia, and UBS, this […]
A recent report by Mandiant, a leading cybersecurity firm, sheds light on a concerning campaign targeting vulnerabilities in Ivanti Connect Secure and Ivanti Policy Secure appliances. Published in early April 2024, the report details the activity of five suspected Chinese espionage groups exploiting these vulnerabilities to gain initial access to targeted systems. The identified Ivanti […]